.bootstrap - Crack and Hacking – Safe with most medications

Hello everyone,

Happy new year

I’m over and out.

Related posts:

1. Happy Halloween
2. Year-End Report
3. SSL Certificates Review: What to Buy

I have assembled this small list of great and useful WordPress plugins. Mostly for my own purpose

• Random Header Image
• More to come

Related posts:

1. Syntax Highlight Code in WordPress Posts
2. Blog Comment Spam and WordPress Anti-Spam Plugins
3. Moved to WordPress
4. Spatial Plugins for Ruby on Rails
5. Top Eclipse Plugins
6. Add del.icio.us Bookmarks to WordPress
7. Mozilla Firefox 1.5 crash on image paste
8. Generate random MAC address for e.g. Xen guests
9. Convert/Import from PDF and Keep the Formatting
10. How to mount bin / cue image files in Linux

Yesterday I bought a NAS-server device – a Linksys Network Storage Link NSLU2. The NSLU2 was AFAIK the best device in terms of value for money. Inside the NSLU2 Linksys placed a small customized Linux distribution – this doesn’t more or less mean anything in it self, but since the Linux kernel is released under the terms of the GNU Public License, and same is the official Linksys NSLU2 Linux distribution, that it self means that it’s posible for anyone to modify the software within he NSLU2. A few NSLU2 user groups on the internet has taken that posibility, and created new and enhanched software releases for the NSLU2 – more formally these software releases are called firmware. On http://www.nslu2-linux.org/ I have found a lot different firmware releases and hardware hacks, and there is there is descriptions on the site how to: add a printer, add a USB webcam, add a extra ethernet adapter, and so on. All in all getting a NSLU2 is connected with a lot posibilities seen from a hacker perspective – the question is only what to do and not to do. By now I think my NSLU2 should just serve as a straight NAS-server and outbound FTP-server.

Related posts:

1. Howto Publish Weather Data from a LaCrosse 2300 Weather Station using a Linksys NSLU2 and Open2300
2. How To Update A Garmin Nuvi (Firmware and Maps)
3. Howto Install Fedora From a USB Flash Key Drive
4. Howto Create a libstdc++ Compat on Debian (e.g. libstdc++-libc6.2-2.so.3)
5. Fedora Howto: Install From Memory-stick
6. PXE network boot using Windows
7. Google Trends to reveal the most popular Linux distribution
8. Howto Hack a Wireless WEP Network
9. Howto Wiretap – Sniff Network Traffic
10. Jailbreak iPhone 3GS Using redsn0w (Linux)

I have written this as a round up on my search for a Linux driver for the built-in webcam in my Asus A3N series notebook. The built-in webcam in my book is built on a micro chip from Ali and it is named m5603c, more in general the chip is sometimes refered to as m560x. I found that this m560x chip is used in a lot of different devices and even other notebooks like the Asus A6 series.

Right now – it seems that there are a few projects focusing on creating a driver for m560x chip, currently I have noticed these ones.

• SANE m5603c backend
• Ali M560x Linux Driver Project
• ALi USB2 M5603C Video Camera Controller – Seems stalled

Until now I have assembled this list of devices that are build upon the m560x chip.

• Asus Z9100G notebook series
• Sweex webcam
• Asus A6 notebook series
• Q-TEC Webcam 300 USB 2.0
• Trust SpaceC@m 360
• Creative Live Pro
• USB 2.0 Webcam 1.3 Megapixel
• Genius VideoCam Slim USB2

Please leave a comment – if you know a device or driver project not listed here

Related posts:

1. BisonCam ( ALi M5603C ) Linux driver
2. Asus A3N series BisonCam Webcam
3. Intel Entry Server Board S3000AH: Linux and lm-sensors
4. Building Google Chrome on Linux
5. Brother HL-1430 Printer Driver Download
6. Open Source Driver for ATI Radeon R5xx/R6xx
7. Use a Linux patition as a drive in windows
8. Topcom Skyr@cer PCI 111 – RTL8180L based
9. Seamless Windows Applications on Ubuntu Linux Using VirtualBox
10. Mono developer brings the Ribbon interface (as in Office 2007) to Linux

Today I found this Debian guide for dpkg and apt-get

Related posts:

1. Howto install Sun Java on Debian Sarge
2. Howto duplicate a debian setup
3. Howto: Create your own Debian or Ubuntu package repository
4. Howto install Xen on Debian Sarge (stable)
5. Guide on how to iSync a Nokia 6300 on Mac OS X
6. Howto Install Sun Java on Debian Etch
7. Debian: the fastest growing webserver platform
8. Debian GNU/Linux 5.0 released
9. Howto: Write Debian Package Descriptions
10. Upgrade Debian Etch to Debian Lenny

This document describes how to install Ubuntu or Windows through your network without having to use a Linux box as a TFTP and DHCP server. This is a very easy and effective method.

Related posts:

1. Howto: Install Windows Vista Fonts in Ubuntu
2. Xen Howto: Install Windows
3. Howto Install Windows XP / Vista on Xen
4. Ubuntu Netboot and Netinstall with PXE
5. Linksys Network Storage Link NSLU2
6. Crack Cisco VPN (hack)
7. Windows ontop of Xen
8. Howto use WEP encryption with Ubuntu Linux
9. Howto Install Fedora From a USB Flash Key Drive
10. HackerGuide: Sniff Live Network Connections Using Ettercap


'[...] Udover økonomaen er der én læge ansat - på provisionsløn: fuldt honorar for helbredelse og halvt honorar, hvis patienten dør.'


Quote fra Aalborg Sygehus historie

Related posts:

1. Aalborg on Wikitravel.org
2. Microsoft DNS Servers Might Suck Big Time

I have built this small tutorial because somebody kept requesting different urls on the server with referer spam. The tutorial shows how to block referer spam on a Debian 3.1 server with a apache 2 webserver by using mod_security

 

Install mod_security

debian21:~# apt-get install libapache2-mod-security
Reading Package Lists... Done
Building Dependency Tree... Done
The following extra packages will be installed:
  mod-security-common
The following NEW packages will be installed:
  libapache2-mod-security mod-security-common
0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
Need to get 274kB of archives.
After unpacking 737kB of additional disk space will be used.
Do you want to continue? [Y/n]
Get:1 http://mirrors.sunsite.dk stable/main mod-security-common 1.8.7-1 [240kB]
Get:2 http://mirrors.sunsite.dk stable/main libapache2-mod-security 1.8.7-1 [34,4kB]
Fetched 274kB in 0s (682kB/s)
Selecting previously deselected package mod-security-common.
(Reading database ... 28605 files and directories currently installed.)
Unpacking mod-security-common (from .../mod-security-common_1.8.7-1_all.deb) ...
Selecting previously deselected package libapache2-mod-security.
Unpacking libapache2-mod-security (from .../libapache2-mod-security_1.8.7-1_i386.deb) ...
Setting up libapache2-mod-security (1.8.7-1) ...
Setting up mod-security-common (1.8.7-1) ...
debian21:~#

Enable the newly installed module

debian21:~# a2enmod mod-security
Module mod-security installed; run /etc/init.d/apache2 force-reload to enable.
debian21:~#

Add this setup to your apache2.conf or your .htaccess file

<ifmodule mod_security.c>
    # Turn the filtering engine On or Off
    SecFilterEngine On

    # Make sure that URL encoding is valid
    SecFilterCheckURLEncoding On

    # Unicode encoding check
    SecFilterCheckUnicodeEncoding Off

    # Only allow bytes from this range
    SecFilterForceByteRange 0 255

    # Only log suspicious requests
    SecAuditEngine RelevantOnly

    # The name of the audit log file
    #SecAuditLog logs/audit_log
    # Debug level set to a minimum
    #SecFilterDebugLog logs/modsec_debug_log
    #SecFilterDebugLevel 0

    # Should mod_security inspect POST payloads
    SecFilterScanPOST On

    # By default log and deny suspicious requests
    # with HTTP status 500
    SecFilterDefaultAction "deny,log,status:500"

    # Block request with suspicious referers
    SecFilterSelective "HTTP_REFERER" "(holdem|poker|casino|porn)" deny,nolog,status:500
</ifmodule>

And then restart apache

debian21:~# /etc/init.d/apache2 restart
Forcing reload of web server: Apache2.
debian21:~#

Then run a few test requests to ensure it works as we intended it to

debian21:~# wget http://localhost/ --referer=http://www.holdem.com
--15:33:34--  http://localhost/
           => `index.html'
Resolving localhost... 127.0.0.1
Connecting to localhost[127.0.0.1]:80... connected.
HTTP request sent, awaiting response... 500 Internal Server Error
15:33:34 ERROR 500: Internal Server Error.

debian21:~#

It blocks the request just like we thought it would.

debian21:~# wget http://localhost/ --referer=http://www.google.com
--15:33:43--  http://localhost/
           => `index.html'
Resolving localhost... 127.0.0.1
Connecting to localhost[127.0.0.1]:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,009 [text/html]

100%[========================================>] 1,009         --.--K/s

15:33:43 (9.62 MB/s) - `index.html' saved [1009/1009]

debian21:~#

The request passed right trough as intended

And we are done.
This is only one way of preventing referer spam, some others have done a similar block by using the built-in Linux firewall called iptables. Perhaps more on using iptables as blocking mechanism another time.

Related posts:

1. Openssl to create an unencrypted key from an encrypted one (Remove password)
2. Blog Comment Spam and WordPress Anti-Spam Plugins
3. Howto Secure Apache
4. Varnish : Simple and Fast HTTP Acceleration
5. PHP 5.2 and APC (Alternative PHP Cache) Performance
6. HTTP Request Smuggling
7. Sending Spam with SWT
8. Howto install Sun Java on Debian Sarge
9. Howto Create Generate a Certificate Signing Request
10. PHP Source Code Security Audit Tool